1. Log into the Symantec Endpoint Protection Manager and click on the Clients tab.
2. In the right-hand pane, click on the Policies tab.
3. Under Location-specific Policies and Settings, double-click Antivirus & Antisypware Policy and click Edit Shared.
4. On the Antivirus and Antispyware Policy page, click Administrator-defined Scans. Select the Advanced tab.
5. Under Startup and Triggered Scans, check or uncheck the following options:
Run startup scans when users log on
Allow users to modify startup scans
Run a Quick Scan when new definitions arrive
6. Click OK.
You can just click on allow users to modify startup scans, then that client can select its own option.